Viproy Voip Pen-Test Kit is developed to improve the quality of SIP Penetration Tests. It provides authentication feature that helps to create simple tests. It includes 10 different modules with authentication support: options tester, brute forcer, enumerator, invite tester, trust analyzer, proxy and registration tester. All attacks could perform before and after authentication to fuzz SIP services and value added services.
SIP Pen-test guide will be published soon. Basic Usage of Modules are presented below, it can be used before guide. All modules have DEBUG and VERBOSE supports
Preparing The Test Network
VulnVOIP is vulnerable SIP server, you can use it for tests
VulnVOIP : http://www.rebootuser.com/?cat=371
Installation – Metasploit Github Edition
Copy “lib”, “modules” and “data” folders’ content to Metasploit Root “/” Directory.
Mixins.rb File (lib/msf/core/auxiliary/mixins.rb) Should Contain This Line
Installation – Metasploit Pro Edition
Copy “lib”, “modules” and “data” folders’ content to /opt/metasploit/apps/pro/msf3 directory.
Mixins.rb File (/opt/metasploit/apps/pro/msf3/lib/msf/core/auxiliary/mixins.rb) Should Contain This Line
For SIP Trust Analyzer module.
Install “pcaprub” via “/opt/metasploit/ruby/bin/gem install pcaprub”
Metasploit – How To install Pcaprub For Windows (http://msfbt.wordpress.com/2012/05/31/metasploit-how-to-install-pcaprub-for-windows/)
Sample Usage Video
Download latest version : viproy-voipkit-master.zip (35.5 KB) | Mirror : http://seclist.us/wp-content/uploads/2014/08/viproy-voipkit-master.zip
Sources : viproy-voipkit | http://viproy.com/